Claims 

[cl ] A method for access control of a hardfile, responsive to a hardfile controller 

included in a computer system having an operating system performing a pre- 
boot test, comprising the steps of: 

a) detecting a boot condition during the pre-boot test; and 

b) altering, in response to the boot condition, an operating system access 
configuration of the hardfile. 

[c2] The access method of claim 1 w herein the altering step b) dynamically sets a 

maximum accessible size of the hardfile. 

[c3] The access method of claim T w herein the hardfile is a hard drive. 

[c4] The method of claim 1 w herein the operating system is stored on a first part of 

H : the hardfile and user data is stored on a second part of the hardfile, and 

P wherein the altering step b) sets the hardfile access to exclude the second part 
of the hardfile from access by the operating system. 

4S 

m [c5] The method of claim 2 w herein the operating system is stored on a first part of 

^ the hardfile and user data is stored on a second part of the hardfile, and 

Cl wherein the altering step b) sets the hardfile maximum size to exclude the 

f/ second part of the hardfile from access by the operating system. 

b 

Q [c6] The method of claim 4 wherein the boot condition is a hardware tamper detect. 

rtj 

[c7] A method for access control of a hardfile, responsive to a computer system 

having an operating system, comprising the steps of: 

a) detecting a special boot condition during a pre-boot test of the computer 
system; and 

b) altering, in response to the special boot condition, an operating system 
access configuration of the hardfile. 

[c8] The access method of claim 7 wherein the altering step b) dynamically sets a 

maximum accessible size of the hardfile. 

[c9] The access method of claim 7 wherein the hardfile is a hard drive. 
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[cl 0] The method of claim 7 w herein the operating system is stored on a first part of 

the hardfile and user data is stored on a second part of the hardfile, and 
wherein the altering step b) sets the hardfile access to exclude the second part 
of the hardfile from access by the operating system. 

[cl 1] The method of claim 8 wherein the operating system is stored on a first part of 

the hardfile and user data is stored on a second part of the hardfile, and 
wherein the altering step b) sets the hardfile maximum size to exclude the 
second part of the hardfile from access by the operating system. 

[cl 2] The method of claim 10 w herein the special boot condition is a hardware 

tamper detect. 

[cl 3] A storage system for a computer system having an operating system and a pre- 

J*& boot procedure, comprising: 

O 

S a hardfile for non-volatile storage of the operating system on a first part of the 

ffj hardfile and a plurality of user data on a second part of the hardfile; and 

fl a hardfile controller, coupled to the hardfile and responsive to a special boot 

condition detected by the pre-boot procedure, for dynamically reconfiguring 
operating system access to the hardfile to permit access to both the first part 
and the second part in a first mode and to permit access to only the first part in 
a second mode. 
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St [cl 4] A storage system for a computer system having an operating system, 

sW 

comprising: 

a hardfile for non-volatile storage of the operating system on a first part of the 
hardfile and a plurality of user data on a second part of the hardfile; and 
a hardfile controller, coupled to the hardfile and responsive to a special boot 
condition detected by a pre-boot procedure of the computer system, for 
dynamically reconfiguring operating system access to the hardfile to permit 
access to both the first part and the second part in a first mode and to permit 
access to only the first part in a second mode. 



[cl 51 



A storage system controller for a hardfile of a computer system having an 
operating system and a pre-boot procedure, the hardfile for non-volatile 
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storage of the operating system on a first part of the hardfile and a plurality of 
user data on a second part of the hardfile, comprising: 

a hardfile controller, coupled to the hardfile and responsive to a boot condition 
detected by the pre-boot procedure, for dynamically reconfiguring operating 
system access to the hardfile to permit access to both the first part and the 
second part in a first mode and to permit access by the operating system to 
only the first part in a second mode. 

A storage system controller for a hardfile of a computer system having an 
operating system, the hardfile for non-volatile storage of the operating system 
on a first part of the hardfile and a plurality of user data on a second part of the 
hardfile, comprising: 

a hardfile controller, coupled to the hardfile and responsive to a boot condition 
detected by a pre-boot procedure of the computer system, for dynamically 
reconfiguring operating system access to the hardfile to permit access to both 
the first part and the second part in a first mode and to permit access by the 
operating system to only the first part in a second mode. 

A hardfile system for a computer system, comprising: 
a hardfile for nonvolatile storage of a operating system and user data; 
means, coupled to the computer system, for detecting a special boot condition 
during the pre-boot test; and 

means, coupled to the hardfile and to the detecting means, for altering, in 
response to the special boot condition, an operating system access 
configuration of the hardfile. 

[cl 8] A hardfile storage system, comprising: 

a hardfile for nonvolatile storage of an operating system for a computer system 
in a first part and for nonvolatile storage of user data in a second part; and 
means, coupled to the hardfile, for dynamically enabling operating system 
access to the hardfile in a first mode and a second mode, wherein the first 
mode enables access to the first part and the second part and the second mode 
enables access to only the first part. 

f c19 ^ A computer usable medium having computer readable program code means 



[cl6] 



[cl7] 
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embodied therein for access control of a hardfile, responsive to a hardfile 
controller included in a computer system having an operating system 
performing a pre-boot test, the computer readable program code means in the 
computer usable medium comprising: 

computer readable program code means for causing the computer system to 
detect a boot condition during the pre-boot test; and 
computer readable program code means for causing the computer system to 
alter, in response to the boot condition, an operating system access 
configuration parameter of the hardfile. 

[c20] The computer usable medium of claim 19 wherein the boot condition is a 

hardware tamper detect. 

[c21] The computer usable medium of claim 1 9 wherein the hardfile is a hard disk. 

25 [c22] The computer usable medium of claim 21 w herein the configuration parameter 

01 is a SETMAX value. 



[c23] A computer readable medium containing program instructions for access 

Sj control of a hard file in a computer system, the program instructions for: 

i-i a) detecting a boot condition during the pre-boot test; and 

f- b) altering, in response to the boot condition, an operating system access 

¥* 

Q configuration of an access parameter of the hardfile. 

ft 

W [c24] The computer readable medium of claim 23 wherein the boot condition is a 
hardware tamper detect. 

[c25] The computer readable medium of claim 23 wherein the hardfile is a hard disk. 
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